The following WSO2 product is publicly accessible and looks out-dated :
It is critical to update to a safe version as soon as possible since a vulnerability allow remote attackers to achieve RCE (Remote code execution) on the service. Those vulnerabilities are currently used in ransomware campaign and could damage your network.
Reference:
Severity: critical
Fingerprint: 0ac2efb9e7a4e4a89a803d6200fae19000fae19000fae19000fae19000fae190
Found WSO2 product: Vulnerable to CVE-2022-29464
Open service 158.197.29.160:443 · ais2auth-vyvoj.science.upjs.sk
2025-01-01 18:44
HTTP/1.1 302 Found Date: Wed, 01 Jan 2025 18:44:04 GMT Server: WSO2 Carbon Server X-Content-Type-Options: nosniff X-XSS-Protection: 1; mode=block Location: https://ais2auth-vyvoj.science.upjs.sk/carbon Content-Type: text/html;charset=UTF-8 Content-Length: 0 Set-Cookie: JSESSIONID=F2E2401199688562932EA76B58D736B5C182D18BB0C3AED2FEEF2BFB1AC53E0F6BC6F1CCB83DC31C5A82409FB7D5FE6ED81518FE27FCEFF8158BB4262F693813402512D9BA7025E95018E41A9E783C62849394A29FB2520348CFA8DEFE8BF5B6EADC2A0994C9AC8A430BA9042FB2C83930D633F791F4345AD316AE28CB2A1555; Path=/; Secure; HttpOnly Cache-Control: no-cache, no-store, must-revalidate, private Pragma: no-cache Content-Security-Policy: frame-ancestors https://idp.uniba.sk; Connection: close
Open service 158.197.29.160:443 · ais2auth-vyvoj.science.upjs.sk
2024-12-24 06:23
HTTP/1.1 302 Found Date: Tue, 24 Dec 2024 06:23:02 GMT Server: WSO2 Carbon Server X-Content-Type-Options: nosniff X-XSS-Protection: 1; mode=block Location: https://ais2auth-vyvoj.science.upjs.sk/carbon Content-Type: text/html;charset=UTF-8 Content-Length: 0 Set-Cookie: JSESSIONID=BEA69AD9C45DB5A8D06E865D099827A06BC2B62DABE6BCE75932163CCA1A8CFF1D870C01A940964B381ECEA68ED2B007F3316A85C0D96D2BE2853693704A3A80F360AF243DA2428A0A6BC152BDFE7E2F78BFFFCF495D5F9E5642267E745A7297B4B226F260C9ACBA936A063F861C052BBF3727C5E384588D34DF8E835549E283; Path=/; Secure; HttpOnly Cache-Control: no-cache, no-store, must-revalidate, private Pragma: no-cache Content-Security-Policy: frame-ancestors https://idp.uniba.sk; Connection: close
Open service 158.197.29.160:443 · ais2auth-vyvoj.science.upjs.sk
2024-12-20 19:33
HTTP/1.1 302 Found Date: Fri, 20 Dec 2024 19:33:19 GMT Server: WSO2 Carbon Server X-Content-Type-Options: nosniff X-XSS-Protection: 1; mode=block Location: https://ais2auth-vyvoj.science.upjs.sk/carbon Content-Type: text/html;charset=UTF-8 Content-Length: 0 Set-Cookie: JSESSIONID=8DEEF88447C03598FE790E3BB136CA4CA949E12A115FFFE4B5A54E1360961BC552FD460B9E6ADF761C6D92CC50EE105E696D6AF6BD285D8E41FFD7DE8C6096F7753B512B9A3448C3DB0131309F1B99C73C243429FBC879E3AFC1027512AD538BD8B225AF1C7F8ED970C79BC0E424F9E4D10AA75EF14F049839AD683213039CC0; Path=/; Secure; HttpOnly Cache-Control: no-cache, no-store, must-revalidate, private Pragma: no-cache Content-Security-Policy: frame-ancestors https://idp.uniba.sk; Connection: close
Open service 158.197.29.160:443 · ais2auth-vyvoj.science.upjs.sk
2024-12-18 20:11
HTTP/1.1 302 Found Date: Wed, 18 Dec 2024 20:11:38 GMT Server: WSO2 Carbon Server X-Content-Type-Options: nosniff X-XSS-Protection: 1; mode=block Location: https://ais2auth-vyvoj.science.upjs.sk/carbon Content-Type: text/html;charset=UTF-8 Content-Length: 0 Set-Cookie: JSESSIONID=A8A54B975474B78FE8E76DAE2C5BCA30A555EA5211E56C901082E8F24B60BACF606E718033B2D0852ED91985402899CBBF049E9260124C59043311836ACA32426A8CDB98221FFB8AEC5D426BF787581D110E62DE63F3FB843434A7556A0668011D35DBD76A254B85622BA6B3DCBF9E6B4FC376B55316AA08A7FDF3D3B2F6D615; Path=/; Secure; HttpOnly Cache-Control: no-cache, no-store, must-revalidate, private Pragma: no-cache Content-Security-Policy: frame-ancestors https://idp.uniba.sk; Connection: close
Open service 158.197.29.160:443 · ais2auth-vyvoj.science.upjs.sk
2024-12-14 09:00
HTTP/1.1 302 Found Date: Sat, 14 Dec 2024 09:00:44 GMT Server: WSO2 Carbon Server X-Content-Type-Options: nosniff X-XSS-Protection: 1; mode=block Location: https://ais2auth-vyvoj.science.upjs.sk/carbon Content-Type: text/html;charset=UTF-8 Content-Length: 0 Set-Cookie: JSESSIONID=927659BF17E57735384AB9617727819FCC819F509B95594907F2987E652B3130851B03D3DBE32DFEEE6F394CD075A08308CD7D0D95C6E7685B9FB768B1FAB69044D9546C60AC011385FC9DBF8E107D568F1C22D71A9DDBC8C31279B70772CE54CECC7C7734125646751F9FFC718DF73B3B1B91CED8F5A65C19358EB9091F14C3; Path=/; Secure; HttpOnly Cache-Control: no-cache, no-store, must-revalidate, private Pragma: no-cache Content-Security-Policy: frame-ancestors https://idp.uniba.sk; Connection: close
Open service 158.197.29.160:443 · ais2auth-vyvoj.science.upjs.sk
2024-12-12 13:59
HTTP/1.1 302 Found Date: Thu, 12 Dec 2024 13:59:52 GMT Server: WSO2 Carbon Server X-Content-Type-Options: nosniff X-XSS-Protection: 1; mode=block Location: https://ais2auth-vyvoj.science.upjs.sk/carbon Content-Type: text/html;charset=UTF-8 Content-Length: 0 Set-Cookie: JSESSIONID=830FF53DBDBDA2314AB1FC9690D4F8FF26ACD76B43810670BF6F1C472425FAD8CCB63E6CE140876515A8511FD25DD73985E4FD6254DB2D2A8F9D22BD2BA70236CDF3923E7B7AABD24390FE050AD9A03E869ABCB8CED3785A97068924C79237AE671EA5DDFB5B7EA65B57624C401D4373A3170AEDD3FB50013DED1D68BBC25723; Path=/; Secure; HttpOnly Cache-Control: no-cache, no-store, must-revalidate, private Pragma: no-cache Content-Security-Policy: frame-ancestors https://idp.uniba.sk; Connection: close
Open service 158.197.29.160:443 · ais2auth-vyvoj.science.upjs.sk
2024-12-02 23:37
HTTP/1.1 302 Found Date: Mon, 02 Dec 2024 23:37:30 GMT Server: WSO2 Carbon Server X-Content-Type-Options: nosniff X-XSS-Protection: 1; mode=block Location: https://ais2auth-vyvoj.science.upjs.sk/carbon Content-Type: text/html;charset=UTF-8 Content-Length: 0 Set-Cookie: JSESSIONID=0C6CEBB840D3550947B5CFE97030ACB7C9006F44D5DF4B435C398280F392515B8412208417941FDD56007D3DF2EF3F9B0A3F339334BAB11E810CAD6A8F65B25CBBCCBB102CBE83B95FE90CCFCA513EC15B7171987FD39863F60C151C8C615AB54AA799F38FC2F6AF927F2827ACE23D79B092A5D64643A88802A02CFDC2CAD06F; Path=/; Secure; HttpOnly Cache-Control: no-cache, no-store, must-revalidate, private Pragma: no-cache Content-Security-Policy: frame-ancestors https://idp.uniba.sk; Connection: close